Merge pull request #8 from ncode/juliano/integration

feat: add integration tests with Vault dev mode

Author: ncode

.github/workflows/ci.yml

@@ -3,7 +3,7 @@ name: Test and coverage
 on: [push, pull_request]
 
 jobs:
-  build:
+  unit-tests:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/[email protected]
@@ -13,10 +13,49 @@ jobs:
         with:
           go-version: '1.25'
       - name: Run coverage
-        run:  go env -w GOTOOLCHAIN=go1.25.0+auto && go test -coverpkg=./... ./... -race -coverprofile=coverage.out -covermode=atomic
+        run: go env -w GOTOOLCHAIN=go1.25.0+auto && go test -coverpkg=./... ./... -race -coverprofile=coverage.out -covermode=atomic
       - name: Upload coverage to Codecov
         uses: codecov/codecov-action@v5
         with:
           verbose: true
         env:
           CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
+
+  integration-tests:
+    runs-on: ubuntu-latest
+    needs: unit-tests
+    services:
+      vault:
+        image: hashicorp/vault:1.18
+        ports:
+          - 8200:8200
+        env:
+          VAULT_DEV_ROOT_TOKEN_ID: root-token
+          VAULT_DEV_LISTEN_ADDRESS: 0.0.0.0:8200
+          VAULT_ADDR: http://127.0.0.1:8200
+        options: >-
+          --cap-add=IPC_LOCK
+          --health-cmd="vault status"
+          --health-interval=2s
+          --health-timeout=5s
+          --health-retries=15
+    steps:
+      - uses: actions/[email protected]
+      - uses: actions/[email protected]
+        with:
+          go-version: '1.25'
+      - name: Wait for Vault to be ready
+        run: |
+          for i in {1..30}; do
+            if curl -s http://127.0.0.1:8200/v1/sys/health | grep -q "initialized"; then
+              echo "Vault is ready"
+              break
+            fi
+            echo "Waiting for Vault..."
+            sleep 1
+          done
+      - name: Run integration tests
+        env:
+          VAULT_ADDR: http://127.0.0.1:8200
+          VAULT_TOKEN: root-token
+        run: go env -w GOTOOLCHAIN=go1.25.0+auto && go test -tags=integration -v -race ./...

Makefile

@@ -0,0 +1,56 @@
+.PHONY: test test-unit test-integration test-coverage lint build clean docker-up docker-down
+
+# Default target
+all: lint test build
+
+# Build the binary
+build:
+	go build -o vault-audit-filter .
+
+# Run unit tests
+test-unit:
+	go test -v -race ./...
+
+# Run integration tests (requires Vault to be running)
+test-integration:
+	go test -tags=integration -v -race ./...
+
+# Run all tests
+test: test-unit
+
+# Run tests with coverage
+test-coverage:
+	go test -coverpkg=./... ./... -race -coverprofile=coverage.out -covermode=atomic
+	go tool cover -func=coverage.out
+
+# Run linter
+lint:
+	go vet ./...
+	go fmt ./...
+
+# Clean build artifacts
+clean:
+	rm -f vault-audit-filter
+	rm -f coverage.out
+
+# Start Vault for integration tests
+docker-up:
+	docker compose up -d
+	@echo "Waiting for Vault to be ready..."
+	@for i in $$(seq 1 30); do \
+		if curl -s http://127.0.0.1:8200/v1/sys/health | grep -q "initialized"; then \
+			echo "Vault is ready"; \
+			break; \
+		fi; \
+		echo "Waiting..."; \
+		sleep 1; \
+	done
+
+# Stop Vault
+docker-down:
+	docker compose down
+
+# Run integration tests with docker
+integration: docker-up
+	VAULT_ADDR=http://127.0.0.1:8200 VAULT_TOKEN=root-token go test -tags=integration -v -race ./...
+	$(MAKE) docker-down

docker-compose.yml

@@ -0,0 +1,26 @@
+services:
+  vault:
+    image: hashicorp/vault:1.18
+    container_name: vault-integration
+    ports:
+      - "8200:8200"
+    environment:
+      VAULT_DEV_ROOT_TOKEN_ID: "root-token"
+      VAULT_DEV_LISTEN_ADDRESS: "0.0.0.0:8200"
+      VAULT_ADDR: "http://127.0.0.1:8200"
+    cap_add:
+      - IPC_LOCK
+    command: "vault server -dev -dev-root-token-id=root-token -dev-listen-address=0.0.0.0:8200"
+    healthcheck:
+      test: ["CMD", "vault", "status"]
+      interval: 2s
+      timeout: 5s
+      retries: 10
+
+  # UDP receiver for testing forwarding
+  udp-receiver:
+    image: alpine:3.19
+    container_name: udp-receiver-integration
+    ports:
+      - "9999:9999/udp"
+    command: ["nc", "-luk", "-p", "9999"]